projects / mirror / dsa-puppet.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Enable lingering for the contributors user
[mirror/dsa-puppet.git] / modules / roles / manifests / ports_master.pp
1 class roles::ports_master {
2   rsync::site { 'ports-master':
3     source      => 'puppet:///modules/roles/ports_master/rsyncd.conf',
4     # Needs to be at least number of direct mirrors plus some spare
5     max_clients => 50,
6     sslname     => 'ports-master.debian.org',
7   }
8
9   ssl::service { 'ports-master.debian.org':
10     key => true,
11   }
12
13   vsftpd::site { 'ports-master':
14     banner         => 'ports-master.debian.org FTP server',
15     logfile        => '/var/log/ftp/vsftpd-ports-master.debian.org.log',
16     writable       => true,
17     writable_other => true,
18     chown_user     => mini-dak-unpriv,
19     root           => '/srv/ports-master.debian.org/ftp.upload',
20   }
21
22   # export ssh allow rules for hosts that we should be able to access
23   @@ferm::rule::simple { "dsa-ssh-from-ports_master-${::fqdn}":
24     tag         => 'ssh::server::from::ports_master',
25     description => 'Allow ssh access from ports-master',
26     chain       => 'ssh',
27     saddr       => $base::public_addresses,
28   }
29 }
Unnamed repository; edit this file 'description' to name the repository.